Info

Disclosure

Apr 04, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Kaspersky AntiVirus contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when local code is executed through klif.sys, allowing the code to receive Ring-0 privileges. This flaw may lead to a loss of Integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified
OSVDB: Security Software

Solution

Upgrade to version 6.0.2.614 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Kaspersky Lab	Kaspersky Anti-Virus for Windows Workstations	5.x
Kaspersky Lab	Kaspersky Anti-Virus for Windows File Servers	5.x

References

CVE ID: 2007-1881 (see also: NVD)
Secunia Advisory ID: 24778
Related OSVDB ID: 33848 33849 33850 33851
VUPEN Advisory: ADV-2007-1268
Vendor URL: http://www.kaspersky.com/
Vendor Specific Advisory URL: http://www.kaspersky.com/technews?id=203038693
http://www.kaspersky.com/technews?id=203038694

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/33852

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Kaspersky Lab

Kaspersky Anti-Virus for Windows Workstations

Kaspersky Anti-Virus for Windows File Servers

References

Credit